This page has been translated from English

Articles Comments

Guatewireless.org » Protocols

Samba - Configuration of the ports of Iptables Firewall

March 1st, 2010 | Add your comment

As I can configure the iptables firewall in Linux CentOS, Debian, Fedora, RHEL, Redhat, or Ubuntu to allow access to Samba file server. Let's start by saying that the customer is required to access TCP ports netbios # 137, 138.139 and 445 at the firewall for all Microsoft customers can access files and printers on the Linux host. The Samba server can be configured to allow access to certain machines. However, iptables can block access through the Internet. You should allow only the network systems and connect customers to the Linux Samba server. Opening ports in the firewall samba Edit / etc / sysconfig / iptables, where to allow access to the network 192.168.1.0/24 just add the following ... Read the full article »

Filed under: Protocols , Samba

How to find the network interface on Solaris 10

August 5th, 2009 | 1 Comment

The world of Solaris is a little different to the world Linux user, but with a simple command we can easily see which NIC we installed on our Sun Solaris 10 Server: # kstat-c net | grep net name: dls_stat class: net name: e1000g0 class: net name: mac class: ... Read the full article »

Filed under: IP , OS

Login SSH / SCP without a password auto

February 20th, 2009 | 3 Comments

This small guide explains how to configure shared key based authentication without a password with SSH and SCP. First verify that the server can connect normally, using password. $ Ssh user @ server If you have not been able to connect, verify that the user exists on the remote server and the password is correct. After successful connection, we disconnect to work in our local system. We now proceed to generate the unique key in our local system. It may already be a key, so we check if the file id_dsa.pub into ~ /. Ssh $ ls-l ~ /. Ssh-rwx - xr-x 1 user user 668 February 12 16:07 id_dsa - rwx - xr-x 1 user user 599 February 12 16:07 id_dsa.pub key generate dsa As the generation of public / private key is very simple. Only when I would recommend ... Read the full article »

Filed under: Linux , Protocols

Configure sshd to display a banner before the login access

October 29th, 2008 | Add your comment

 How to change the banner server ssh access? A banner of access is to send a warning message before authentication, to obtain legal protection or simply provide information to users. The contents of the specified file is sent to the remote user authentication before permitting. This option is only available for version 2. The banner is not displayed by default, if you are using a recent version of its Linux distribution does not have to worry about the version of the protocol. Procedure to change the banner to access OpenSSH By default, the sshd server comes with this feature disabled. Then you need to log in as root and create the banner for access: deathbian: ~ # vi / etc / ssh / sshd-banner and write a text like the following example: Welcome ... Read the full article »

Filed under: Howto , Protocols

OpenSSH encryption - How to generate a public key and set in Linux

July 20th, 2007 | 3 Comments

Before setting up a public key of all, and regardless if your Linux is a Debian, Red Hat, SuSe, etc, we must ensure that OpenSSH is the SSH application installed on the client system. The key generation varies under different implementation of SSH. The command ssh-V should display a line containing OpenSSH, followed by other details email: ~ # ssh-V OpenSSH_4.3p2 Debian-9, OpenSSL 0.9.8c 05 Sep 2006 key generation RSA key pair must be generated on the client system. The public part of this key will be stored on servers to which we connect, while the private key must be stored in a secure area of ​​the client system, by default in ~ / .ssh / id_rsa. The key pair generation can be done with the utility ... Read the full article »

Filed under: Articles , Debian , Howto , Internetworking , Linux , Protocols , Security , Ubuntu

SSH: secure access with iptables

June 25th, 2007 | 1 Comment

To prevent dictionary attacks on ssh Several worms that attack vulnerabilities in SSH servers using dictionaries. This should not be a problem if we have a good password policy, otherwise there are other ways to ensure our service SSH. The most obvious way to prevent access to the host, allowing connections from a small group of IP addresses using a firewall. If you currently are running a firewall you can add the following: Accept incoming SSH connections from trusted addresses. Discard all other connections. Using iptables firewall commands as follows: All connections from address 192.168.1.200 port 22 (SSH) deathbian: ~ # iptables-A INPUT-p tcp-m state - state NEW - source 192.168.1.200 - dport 22-j ACCEPT Deny SSH connections to other deathbian: ~ # iptables-A INPUT-p tcp ... Read the full article »

Filed


Fatal error: Allowed memory size of 134217728 bytes exhausted (tried to allocate 33344809 bytes) in / home / guatewireless / site / wp-includes / pluggable.php on line 273